Cisco Cisco Web Security Appliance S690 사용자 가이드
5-4
AsyncOS 8.5 for Cisco Web Security Appliances User Guide
Chapter 5 Acquire End-User Credentials
Authentication Realms
Configuring External Authentication through an LDAP Server
Before You Begin
•
Create an LDAP authentication realm and configure it with one or more external authentication
queries.
queries.
Procedure
Step 1
Enable external authentication on the appliance:
a.
Navigate to System Administration>Users.
b.
Click Enable in the External Authentication section.
c.
Configure the options:
Step 2
Submit and commit your changes.
Enabling RADIUS External Authentication
See
Creating an Active Directory Realm for Kerberos Authentication Scheme
Before You Begin
•
Ensure the appliance is configured in Standard mode (not Cloud Connector Mode).
•
Prepare the Active Directory Server.
–
Install Active Directory on one of these servers: Windows server 2003, 2008, 2008R2 or 2012.
–
Create a user on the Active Directory server that is a member of the domain administrators.
–
Join your client to the domain. Supported clients are Windows XP, Windows 7 and Mac OS
10.5+.
10.5+.
Option
Description
Enable External Authentication
—
Authentication Type
Select LDAP.
External Authentication Cache Timeout
The number of seconds AsyncOS stores the
external authentication credentials before
contacting the LDAP server again to
re-authenticate. Default is zero (0).
external authentication credentials before
contacting the LDAP server again to
re-authenticate. Default is zero (0).
LDAP External Authentication Query
A query configured with the LDAP realm.
Timeout to wait for valid response from
server.
server.
The number of seconds AsyncOS waits for a
response to the query from the server.
response to the query from the server.
Group Mapping
For each group name in the directory, assign a
role.
role.